(12) m jh ^ m * mm w m r* * it 

l 



(19) itt # » tt j* 2 & M £R 

a is* a 



(43) Bfi^*FB: 
2005^10 J! 6 0 (06.10.2005) 




PCT 



(10) HlS^ff-t: 
WO 2005/093581 Al 



(51) B»5h*-S 7 : 

(21) IRffff: 

(22) S^*if 0: 

(25) tfltifW: 

(26) 4MP«W: 

(30) ffi;fc&: 

200410017241.3 



G06F 12/14 
PCT/CN2005/000368 
2005^3 Jl 24 0 (24.03.2005) 

2004^3 J! 26 0 (26.03.2004) CN 



(71) #»A(5tflftSIBK^»flf*»JEH):±»ill0** 

^(SHANGHAI SANLEN INFO 
SECURITY CO., LTD.) [CN/CN]; + S±?§ iff Hi* 
EM$^B&700-§-^#r®1702-03M, Shanghai 
200001 (CN). 

(72) 3tBJ!A;& 

(75) »IJ3A/*fllA({JlJtffiH): *SJII(QIN, Yunchuan) 
[CN/CN]; J3¥B'J(ZHOU, Jungang) [CN/CN]; 4" B 
±*m#»E«$*J»700#«»r«1702-03S, 
Shanghai 200001 (CN). 

(74) ftSA:±?»@#^?[|fta*K^^l(SHANGHAI 
ZHI XIN PATENT AGENT LTD.); + B_t^ rp^^ 
^»446-^^#?(IAJKl03B5, Shanghai 200031 (CN). 

(8i) ffisgB(»^4r»n,s#«-fliWft»BKfty>): 

AE, AG, AL, AM, AT, AU, AZ, BA, BB, BG, BR, BW, 



BY, BZ, CA, CH, CN, CO, CR, CU, CZ, DE, DK, DM, 
DZ, EC, EE, EG, ES, FI, GB, GD, GE, GH, GM, HR, 
HU, ID, IL, IN, IS, JP, KE, KG, KP, KR, KZ, LC, 
LK, LR, LS, LT, LU, LV, MA, MD, MG, MK, MN, 
MW, MX, MZ, NA, NI, NO, NZ, OM, PG, PH, PL, 
PT, RO, RU, SC, SD, SE, SG, SK, SL, SM, SY, TJ, 
TM, TN, TR, TT, TZ, UA, UG, US, UZ, VC, VN, YU, 
ZA, ZM, ZW 

(84) }S^B(l»^W»W,5*«-W^rft«»»Eft^): 

ARIPO(BW, GH, GM, KE, LS, MW, MZ, NA, SD, 
SL, SZ, TZ, UG, ZM, ZW), 0C3E^!)(AM, AZ, BY, 
KG, KZ, MD, RU, TJ, TM), gfc#H^J(AT, BE, BG, 
CH, CY, CZ, DE, DK, EE, ES, FI, FR, GB, GR, HU, 
IE, IS, IT, LT, LU, MC, NL, PL, PT, RO, SE, SI, SK, 
TR), OAPI(BF, BJ, CF, CG, CI, CM, GA, GN, GQ, 
GW, ML, MR, NE, SN, TD, TG) 

ttJftflJQ4.17ttPH: 

4.1 7(ii))st &mm\ix$mm^m&m 
$L(Mm4Ai(in))tfTm%mm: mm 

*BB4MP: 

— fiJSBSte*»*. 



PCT^*«flliBi&»"«WX<lt¥1f-»1B3!«iH». 



(54) Title: TITLE: SECRET FILE ACCESS AUTHORIZATION SYSTEM WITH FINGERPRINT LIMITATION 

(54) RW^fa: *^fBStR«»m*A#i«r|5i«3RS» 





-8-> 







. 20 




a SECRET FILES TO BE ENCRYPTED 

9 ENCRYPTED SECRET FILES 

10 AUTHORIZATION MODULE 



20 ENCRYPTED MODULE 
30 CERTIFICATION MODULE 
40 USER MODULE 



oo 

IT) 

m 

On 
O 

i?5 



o 



(57) Abstract: A secret file access authorization system with fingerprint limitation includes an authorization module, a encrypt 
module and a certification module in the server linked by the programs; and at least one client, each client is provided with a user 
module, this user module contains a kernel encrypt/decrypt unit embedded in the client operation system kernel, therefore it can realize 
that access authorization to the secure file is limited by environment fingerprint and time fingerprint Therein an authorization module 
provides authorization secret key and fingerprint template; an encrypt module receives the input of authorization secret key and secret 
files to be encrypted and provides the secret key for decryption; a user module receives the authorization secret key and encrypted 
secret file and provides authorization secret key certification request to certification module; a certification module receives the decrypt 
secret key and authorization secret key certification request and fingerprint template, and provides certification decrypt secret key to the 
user to start up kernel encrypt/decrypt unit in the user modules and realizes the operation of reading and writing of the encrypted files. 
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